1.2.214.61 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Thailand

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.2.214.61
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7590
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.2.214.61.			IN	A

;; AUTHORITY SECTION:
.			208	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021202 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 12:51:11 CST 2022
;; MSG SIZE  rcvd: 103

HOST信息:

61.214.2.1.in-addr.arpa domain name pointer node-h19.pool-1-2.dynamic.totinternet.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
61.214.2.1.in-addr.arpa	name = node-h19.pool-1-2.dynamic.totinternet.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
192.166.219.125	attack	2019-07-30T22:20:31.739885Z 97406f7736b7 New connection: 192.166.219.125:43756 (172.17.0.3:2222) [session: 97406f7736b7] 2019-07-30T22:29:07.643275Z 6a5163b67a9d New connection: 192.166.219.125:46882 (172.17.0.3:2222) [session: 6a5163b67a9d]	2019-07-31 15:45:20
185.2.5.24	attackspam	miraniessen.de 185.2.5.24 \[31/Jul/2019:06:35:44 +0200\] "POST /wp-login.php HTTP/1.1" 200 5972 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" miraniessen.de 185.2.5.24 \[31/Jul/2019:06:35:45 +0200\] "POST /wp-login.php HTTP/1.1" 200 5972 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-07-31 15:47:07
69.162.83.34	attackbots	SQL Injection attack	2019-07-31 16:20:40
148.70.116.223	attackbotsspam	$f2bV_matches	2019-07-31 15:49:43
157.230.213.241	attackbots	Jul 31 01:11:02 cac1d2 sshd\[10073\]: Invalid user coffee from 157.230.213.241 port 39368 Jul 31 01:11:02 cac1d2 sshd\[10073\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.213.241 Jul 31 01:11:03 cac1d2 sshd\[10073\]: Failed password for invalid user coffee from 157.230.213.241 port 39368 ssh2 ...	2019-07-31 16:18:57
193.169.252.176	attack	2019-07-31T12:16:51.550892ns1.unifynetsol.net postfix/smtpd\[6939\]: warning: unknown\[193.169.252.176\]: SASL LOGIN authentication failed: authentication failure 2019-07-31T12:33:07.122049ns1.unifynetsol.net postfix/smtpd\[16606\]: warning: unknown\[193.169.252.176\]: SASL LOGIN authentication failed: authentication failure 2019-07-31T12:49:36.800651ns1.unifynetsol.net postfix/smtpd\[15848\]: warning: unknown\[193.169.252.176\]: SASL LOGIN authentication failed: authentication failure 2019-07-31T13:06:03.263511ns1.unifynetsol.net postfix/smtpd\[16606\]: warning: unknown\[193.169.252.176\]: SASL LOGIN authentication failed: authentication failure 2019-07-31T13:22:30.311515ns1.unifynetsol.net postfix/smtpd\[25268\]: warning: unknown\[193.169.252.176\]: SASL LOGIN authentication failed: authentication failure	2019-07-31 16:13:33
160.153.147.141	attackbots	Probing for vulnerable PHP code /i5hye8ly.php	2019-07-31 15:18:34
79.188.68.90	attack	Jul 31 04:04:53 xtremcommunity sshd\[2874\]: Invalid user centos from 79.188.68.90 port 43616 Jul 31 04:04:53 xtremcommunity sshd\[2874\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.188.68.90 Jul 31 04:04:55 xtremcommunity sshd\[2874\]: Failed password for invalid user centos from 79.188.68.90 port 43616 ssh2 Jul 31 04:11:10 xtremcommunity sshd\[3113\]: Invalid user eliot from 79.188.68.90 port 41963 Jul 31 04:11:10 xtremcommunity sshd\[3113\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.188.68.90 ...	2019-07-31 16:15:47
104.248.56.37	attackspam	Jul 31 04:27:47 eventyay sshd[24781]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.56.37 Jul 31 04:27:49 eventyay sshd[24781]: Failed password for invalid user emmy from 104.248.56.37 port 35712 ssh2 Jul 31 04:32:00 eventyay sshd[25752]: Failed password for root from 104.248.56.37 port 58446 ssh2 ...	2019-07-31 16:12:14
83.163.138.240	attackspam	firewall-block_invalid_GET_Request	2019-07-31 15:57:50
153.36.242.143	attackbots	Jul 31 10:10:56 dev0-dcfr-rnet sshd[10169]: Failed password for root from 153.36.242.143 port 54994 ssh2 Jul 31 10:10:59 dev0-dcfr-rnet sshd[10169]: Failed password for root from 153.36.242.143 port 54994 ssh2 Jul 31 10:11:01 dev0-dcfr-rnet sshd[10169]: Failed password for root from 153.36.242.143 port 54994 ssh2	2019-07-31 16:18:31
209.141.36.138	attackbotsspam	NAME : PONYNET-04 CIDR : 209.141.32.0/19 SYN Flood DDoS Attack USA - Wyoming - block certain countries :) IP: 209.141.36.138 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-07-31 16:07:16
167.99.49.217	attack	langenachtfulda.de 167.99.49.217 \[31/Jul/2019:07:49:09 +0200\] "POST /wp-login.php HTTP/1.1" 200 6035 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" langenachtfulda.de 167.99.49.217 \[31/Jul/2019:07:49:14 +0200\] "POST /xmlrpc.php HTTP/1.1" 200 4101 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-07-31 15:48:19
117.93.53.69	attack	Lines containing failures of 117.93.53.69 Jul 31 06:06:55 kvm05 sshd[3195]: Bad protocol version identification '' from 117.93.53.69 port 35599 Jul 31 06:06:58 kvm05 sshd[3197]: Invalid user openhabian from 117.93.53.69 port 35910 Jul 31 06:06:59 kvm05 sshd[3197]: Connection closed by invalid user openhabian 117.93.53.69 port 35910 [preauth] Jul 31 06:07:02 kvm05 sshd[3203]: Invalid user misp from 117.93.53.69 port 37425 Jul 31 06:07:02 kvm05 sshd[3203]: Connection closed by invalid user misp 117.93.53.69 port 37425 [preauth] Jul 31 06:07:05 kvm05 sshd[3215]: Invalid user plexuser from 117.93.53.69 port 38811 Jul 31 06:07:06 kvm05 sshd[3215]: Connection closed by invalid user plexuser 117.93.53.69 port 38811 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=117.93.53.69	2019-07-31 15:26:47
118.89.229.117	attackspam	Automatic report - Banned IP Access	2019-07-31 15:25:46

最近上报的IP列表

1.2.227.12	1.2.207.51	1.2.226.70	1.2.194.231
1.20.140.101	1.20.103.52	1.20.141.180	1.20.179.109
1.20.150.154	1.2.240.160	1.20.141.167	1.20.186.173
1.20.194.154	1.20.191.129	1.20.244.235	1.202.102.11
1.20.146.244	1.20.52.164	1.20.81.213	1.20.93.211